Microsoft SharePoint Server contains an unspecified flaw in multiple unspecified components that is triggered when handling specially crafted page content, which may allow an authenticated remote attacker to execute arbitrary code in the security context of the W3WP service account.